0x00 标准模块

Module : standard
Full name : Standard module
Description : Basic commands (does not require module name)

exit - Quit mimikatz
cls - Clear screen (doesn't work with redirections, like PsExec)
answer - Answer to the Ultimate Question of Life, the Universe, and Everything
coffee - Please, make me a coffee!
sleep - Sleep an amount of milliseconds
log - Log mimikatz input/output to file   // log 1.txt  设置日志文件为1.txt;log /stop 停止日志记录
base64 - Switch file input/output base64
version - Display some version informations
cd - Change or display current directory
localtime - Displays system local date and time (OJ command)
hostname - Displays system local hostname

0x01 模块列表

1、standard - Standard module [Basic commands (does not require module name)]

2、crypto - Crypto Module

Module : crypto
Full name : Crypto Module

providers - List cryptographic providers
stores - List cryptographic stores
certificates - List (or export) certificates
keys - List (or export) keys containers
sc - List smartcard readers
hash - Hash a password with optional username
system - Describe a Windows System Certificate (file, TODO:registry or hive)
scauth - Create a authentication certitifate (smartcard like) from a CA
certtohw - Try to export a software CA to a crypto (virtual)hardware
capi - [experimental] Patch CryptoAPI layer for easy export
cng - [experimental] Patch CNG service for easy export
extract - [experimental] Extract keys from CAPI RSA/AES provider

3、sekurlsa - SekurLSA module [Some commands to enumerate credentials...]

4、kerberos - Kerberos package module []
5、privilege - Privilege module

Module : privilege
Full name : Privilege module

debug - Ask debug privilege
driver - Ask load driver privilege
security - Ask security privilege
tcb - Ask tcb privilege
backup - Ask backup privilege
restore - Ask restore privilege
sysenv - Ask system environment privilege
id - Ask a privilege by its id
name - Ask a privilege by its name

6、process - Process module

7、service - Service module
8、lsadump - LsaDump module
9、ts - Terminal Server module
10、event - Event module
11、misc - Miscellaneous module
12、token - Token manipulation module
13、vault - Windows Vault/Credential module
14、minesweeper - MineSweeper module
15、net -
16、dpapi - DPAPI Module (by API or RAW access) [Data Protection application programming interface]
17、busylight - BusyLight Module
18、sysenv - System Environment Value module
19、sid - Security Identifiers module
20、iis - IIS XML Config module
21、rpc - RPC control of mimikatz
22、sr98 - RF module for SR98 device and T5577 target
23、rdm - RF module for RDM(830 AL) device
24、acr - ACR Module

Ref

1、《官方帮助》 https://github.com/gentilkiwi/mimikatz/wiki

2、《Unofficial Guide to Mimikatz & Command Reference》https://adsecurity.org/?page_id=1821

最新文章

  1. coreData部分报错:This NSPersistentStoreCoordinator has no persistent stores.
  2. c语言读取字符在记事本中出现次数
  3. linux(TINY6410)下移植boa服务器
  4. textarea与XSS攻击
  5. Linux下动态链接库 与gcc 选项
  6. ARM工作模式
  7. vi/vim使用指北 ---- Moving Around in a Hurry
  8. Vue.js 2.0版
  9. Linq 查询与普通查询的区别
  10. python中的第三方日志模块logging
  11. Oracle em 此网站的安全证书存在问题
  12. python 读写、创建 文件的方法(必看)
  13. LINUX网络编程 IO 复用
  14. java使用Redis2--保存对象
  15. cocos2dx lua 一键资源管理PowerShell脚本实现
  16. java高并发程序设计模式-并发级别:阻塞、无障碍、无锁、无等待【转载】
  17. ping函数
  18. scrapy-splash抓取动态数据例子十三
  19. LeakCanary 的使用遇到的弯路
  20. lodash map

热门文章

  1. linux上安装Docker
  2. 解决修改css或js文件后,浏览器缓存未更新问题
  3. java中mysql查询报错java.sql.SQLException: Before start of result set
  4. 企业BGP网络规划案例(二)
  5. vue父子组件实现v-model
  6. php判断用户是否关注微信公众号
  7. String笔记
  8. 使用Jmeter连接数据库检查数据库记录的方法
  9. 【转】.NET程序员提高效率的70多个开发工具
  10. 详解slab机制